Debian Linux Security Advisory 3943-1 - Gajim, a GTK+-based XMPP/Jabber client, unconditionally implements the XMPP server to trigger commands to leak private conversations from encrypted sessions. With this update XEP-0146 support has been disabled by default and made opt-in via the 'remote_commands' option.
07790d376b865771b87bae6be010b4fafcfbe4757ed02432939c5f50f3d31869
Gentoo Linux Security Advisory 201707-14 - A vulnerability in Gajim might allow remote attackers to intercept encrypted communications. Versions less than 0.16.6-r1 are affected.
14061d651f634c181526cf898234562b16fc9cae65c32ce919e86bd8af592d5a